Hi Dave,
Try to add this to web.xml under tomcat_install_dir/conf:
"
/<security-constraint>
<web-resource-collection>
<web-resource-name>Protected Context</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<!-- auth-constraint goes here if you requre authentication -->
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>/
"
That works for me.
Regards.
--Hazem.
Dave a écrit :
Hi,
when user types http://www.mydomain.com, how to redirect to secure url
https://www.mydomain.com? I know that a servlet filter can do that. Is there
an easier way?
In server.xml, redirectPort="8443" for port 80, it did not work as I expected.
<Connector port="80" address="${jboss.bind.address}"
maxThreads="250" strategy="ms" maxHttpHeaderSize="8192"
emptySessionPath="true"
enableLookups="false" redirectPort="8443" acceptCount="100"
connectionTimeout="20000" disableUploadTimeout="true"/>
<Connector port="8443" address="${jboss.bind.address}"
maxThreads="100" strategy="ms" maxHttpHeaderSize="8192"
emptySessionPath="true"
scheme="https" secure="true" clientAuth="false"
keystoreFile="${jboss.server.home.dir}/keystore"
keystorePass="123456" sslProtocol = "TLS" />
Thanks for help.
Dave
---------------------------------
Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.